Whether you keep up with the Kardashians or you are just a casual Instagram user, you have probably been exposed to social media influencer posts. Due to social media’s increased marketing importance, companies will offer free products, money or other compensation to social media “influencers”, i.e. users that boast at least 2,000 or more genuine
Data Security and Privacy
New Canadian Breach Notification and Reporting Requirements are Now in Effect
Canada’s new data breach law, the Personal Information Protection and Electronic Documents Act (“PIPEDA”), became effective on November 1, 2018. The Office of the Privacy Commissioner of Canada released new guidance providing explanations of the breach reporting requirements for private-sector businesses that operate in Canada or do business with Canadian customers. The new requirements of…
Wow! Proposed Jail Time for Failing to Protect Consumer Data
By the Data Security & Privacy Team
On November 1, 2018, Senator Ron Wyden, a democrat from the state of Oregon, introduced a bill that attempts to create a stronger consumer privacy act.[1] The draft legislation, referred to as the Consumer Data Protection Act, SIL18B29 (the “Bill”), amends and increases the powers of the…
Update on Data Breach Class Actions
By the Data Security & Privacy Team
While an ocean away, supermarket Morrisons’ loss in the United Kingdom’s appellate court should act as a warning to all United States-based and international companies. On October 22, 2018, Morrisons lost its recent appeal in a landmark high-court ruling, being held vicariously liable for a former employee, Andrew…
Class Actions for Data Security Breaches Are Just Across the Atlantic
By the Data Security & Privacy Team
Adding publicity to the recent string of security breaches, Gemalto’s Breach Level Index released information on October 9, 2018 stating that for the first half of 2018, approximately 291 records were stolen or exposed every single second.[1] Gemalto estimates that 945 data breaches led to the release…
October Declared Cybersecurity Awareness Month
By the Data Security & Privacy Team
On September 27, 2018, Gov. John Bel Edwards declared October to be Cybersecurity Awareness Month in the State of Louisiana, signing a Proclamation in front of members of the Louisiana Cybersecurity Commission. By signing this Proclamation, Gov. Edwards is simultaneously kicking off a Cybersecurity Awareness Campaign promulgated by…
Cell Phone Reward and Risk
In a recent Supreme Court decision involving the Fourth Amendment, Justice Roberts noted that there are 396 million cell phones accounts in the United States for a nation of only 326 million people. The cell phone provides numerous functions including access to contacts, data, information and the internet. Some studies suggest people check cell phones…
Vulnerability Found in Apache Struts
By the Data Security & Privacy Team
Companies using Apache Struts 2.0 should be aware of a possible security breach risk that could give rise to breach notification duties. On August 22, 2018, the Apache Software Foundation posted updates regarding the correction of a vulnerability recently found in its web application platform called Apache Struts.…
Louisiana Governor Signs Significant Changes to Louisiana’s Database Security Breach Notification Law
To say that privacy regulations have been in the news lately is a bit of an understatement. The European Union’s new General Data Protection Regulation has had privacy professionals and businesses scrambling to meet the May 25, 2018 deadline for compliance. While the GDPR may be dominating the national news circuits, the EU is not…
Kean Miller Data Security Alert: W-2 Phishing Scam Returns for Tax Season
The IRS has sent an urgent alert to employers this month that a W-2 phishing scam that many companies fell victim to in 2016 is back in full force for 2017. The IRS warns that this scam is emerging earlier this year and is targeting school districts, tribal organizations, and nonprofits in addition to businesses.…